Hacker News: rekoil

New comment by rekoil in "Due to DMA, Siri AI delayed in EU for iOS 27 and iPadOS 27"

rekoil — Tue, 09 Jun 2026 11:03:54 +0000

Right, and to be specific, what they also leave out is that the DMA only mandates that third-party providers can request access, the user can be in full control without breaching the rules set by the DMA.

New comment by rekoil in "Intel Arc Pro B70 Review"

rekoil — Wed, 29 Apr 2026 13:03:43 +0000

I bought an Arc A770 expecting that this feature would materialise based on it being available on other contemporary Intel GPUs, but it never did.

Does the B70 definitely support SR-IOV from day one?

New comment by rekoil in "Asahi Linux Progress Linux 7.0"

rekoil — Mon, 27 Apr 2026 14:48:25 +0000

They have a new type of core on these they refer to as a "low-power efficiency core", which is probably what is enabling these "feats", but as one of the parents to this comment points out we're comparing Windows configured in "Ultra Efficiency" mode to Apple Silicon MacBooks at most configured in Low Power mode...

Anecdotally, comparing to recent (but still older than these) generations of Intel chips I can run my M2 Max MacBook Pro with 78% battery health for longer (without any special considerations) than colleagues running their Windows Intel laptops in Power Saver mode, while performing similar tasks.

New comment by rekoil in "Asahi Linux Progress Linux 7.0"

rekoil — Mon, 27 Apr 2026 13:59:55 +0000

Yeah I think if they manage to solve that then we're gonna be cruising. I want to but can't really run AsahiLinux as it stands, my workstation is Thunderbolt-based and that's non-negotiable.

New comment by rekoil in "Acetaminophen vs. ibuprofen"

rekoil — Wed, 22 Apr 2026 14:45:21 +0000

Yeah I think this is the biggest difference. Here in Sweden if I get a headache that's bad enough I'll just take a sick day and there's not really much social stigma about that kind of behaviour unless it becomes a pattern that you don't seek medical help for.

I work in an office, but Swedish law protects blue- and white-collared jobs the same in this regard.

New comment by rekoil in "IPv6 traffic crosses the 50% mark"

rekoil — Thu, 16 Apr 2026 10:56:18 +0000

I mean Azure doesn't really support IPv6 well either for a lot of the big-ticket services.

New comment by rekoil in "Everyone hates OneDrive, Microsofts cloud app that steals and deletes files"

rekoil — Thu, 08 Jan 2026 12:48:22 +0000

I'm sure the number probably changed a bit, but I can tell you for a fact it isn't like cheaters disappeared overnight just because they banned Linux clients.

New comment by rekoil in "Everyone hates OneDrive, Microsofts cloud app that steals and deletes files"

rekoil — Thu, 08 Jan 2026 08:22:17 +0000

All the damn developers keep turning off online play for Linux users though... I play two games a lot currently, Apex Legends and Battlefield 6, both block Linux players from online play thanks to their shitty kernel rootkits not supporting Linux.

Apex Legends at least was running fine on Steam Deck prior to november 2024 when they instituted this change, and I can tell you from personal experience it had very little impact on cheaters, which was their excuse for the change (supposedly most cheaters were connecting via Linux clients).

New comment by rekoil in "Running Unsupported iOS on Deprecated Devices"

rekoil — Thu, 27 Nov 2025 10:30:42 +0000

Fascinating. Could this method be used to boot iPhone OS 1.0 (or at least 1.1.1) on an iPhone 2G with 16GB NAND maybe?

The oldest iPhone OS that natively boots on my particular one is 1.1.4, 1.1.1 (which is the highest version number where you can trivially escape the OOBE via the emergency dialer) fails to initialise the FTL (flash translation layer), probably because the chip is sufficiently different from that used in the older phones.

It would bring me great joy to be able to relive emergency dialer hacktivation again, but I have lost that particular iPhone 2G, and only have this 16GB one left.

New comment by rekoil in "iPhone Pocket"

rekoil — Tue, 11 Nov 2025 14:51:09 +0000

I wish the iPhone 12/13 mini had been a few mm thicker for a bigger battery, and had been in the Pro class of devices. As it stands they didn't have a good enough battery to last a day, and most people interested in smaller devices had probably just picked up the new SE that was released just half a year earlier.

New comment by rekoil in "Next Steps for the Caddy Project Maintainership"

rekoil — Thu, 16 Oct 2025 13:22:49 +0000

Right, in the nginx example above, someone has setup a secondary tool to provide certs at the location referenced, and is also handling renewal of them.

Also, if I want to add another domain that should be accepted and reverse proxied to my application, in Caddy I just do this:

    example.com wp.example.com caddyfreakingrules.example.com {
      root * /var/www/wordpress
      php_fastcgi unix//run/php/php-version-fpm.sock
      file_server
    }

Suddenly not only does my Wordpress site respond on example.com, but also wp.example.com, and caddyfreakingrules.example.com, Caddy will fetch and automatically rotate certs for all three domains, and Caddy will auto-redirect from http to https on all three domains. (Does the ngnix example actually do that?)

Another thing, does nginx with the above configuration automatically load new certs if the ones that were there when the process spawned have since expired? Because not only does Caddy automatically renew the certs, it is handled transparently and there's zero downtime (provided nothing changes about the DNS pointers of course).

Caddy is freaking awesome!

Bonus, if this were your Caddyfile (the entire thing, this is all that's needed!):

    {
      admin off
      auto_https prefer_wildcard
      email hostmaster@example.com
      cert_issuer acme {
        dir https://acme-v02.api.letsencrypt.org/directory
        resolvers 1.1.1.1 1.0.0.1
        dns cloudflare {env.CLOUDFLARE_API_TOKEN}
      }
      ocsp_stapling off
    }

    example.com wp.example.com caddyfreakingrules.example.com {
      root * /var/www/wordpress
      php_fastcgi unix//run/php/php-version-fpm.sock
      file_server
    }

    # This is simply to trigger generation of the wildcard cert without
    # responding with the Wordpress application on all of the domains.
    *.example.com {
      respond "This is not the app you're looking for" 404
    }

Then you'll disable the unauthenticated JSON API on localhost:2019 (which is a good security practice, this is my only gripe with Caddy, this API shouldn't be enabled by default), tell Caddy how to use the DNS-01 ACME resolver against Cloudflare (requires a plugin to Caddy, there are loads for many DNS providers), and then tell Caddy to use appropriate wildcard certs if it has generated them (which for *.example.com it will have).

The result of which is that Caddy will only generate one cert for the above 3 sites, and Let's Encrypt won't leak the existance of the wp.example.com and caddyfreakingrules.example.com domains via certificate transparency.

New comment by rekoil in "Jeep pushed software update that bricked all 2024 Wrangler 4xe models"

rekoil — Sun, 12 Oct 2025 17:35:40 +0000

I don't disagree, but if we end up in a situation where users are negatively affected because they chose not to update for fear of shit like this happening, that's not a great position either.

New comment by rekoil in "Jeep pushed software update that bricked all 2024 Wrangler 4xe models"

rekoil — Sun, 12 Oct 2025 16:55:19 +0000

Yeah, I should have spent an extra 10 seconds thinking of the problem here and I'd have realised you can have multiple sensors going to different software on one steering column...

New comment by rekoil in "Jeep pushed software update that bricked all 2024 Wrangler 4xe models"

rekoil — Sun, 12 Oct 2025 16:11:04 +0000

Problem with that is that if it's an online product then the manufacturer also _must_ provide updates to keep the device secure so that it continues to do whatever they sold you in the first place.

Also, adding features on its own is great, but obviously stuff like what happened here can't be allowed to happen, and those Samsung or LG smart fridges that became advertising boards is obviously also not acceptable...

Easy to call the bullshit out, hard to actually define the responsibilities of a manufacturer in a law.

New comment by rekoil in "Jeep pushed software update that bricked all 2024 Wrangler 4xe models"

rekoil — Sun, 12 Oct 2025 16:03:21 +0000

Disregard me, I'm dumb.

New comment by rekoil in "iTerm2 Web Browser"

rekoil — Fri, 19 Sep 2025 08:52:28 +0000

First I thought "WTF why?", and then it appeared in my terminal and then I thought "what the hell, I thought I turned this stuff off!?!"

New comment by rekoil in "macOS Tahoe"

rekoil — Tue, 16 Sep 2025 10:20:28 +0000

If Asahi Linux had support for Thunderbolt and DP alt-mode I would be running it today, but those are dealbreakers for me unfortunately.

I'm donating to them and hoping they eventually get those implemented.

New comment by rekoil in "ChatControl update: blocking minority held but Denmark is moving forward anyway"

rekoil — Mon, 15 Sep 2025 06:35:46 +0000

Or just host their own actually end-to-end encrypted chat apps.

New comment by rekoil in "Danish supermarket chain is setting up "Emergency Stores""

rekoil — Sun, 14 Sep 2025 09:01:40 +0000

I also reacted to this and came to the same conclusion as you.

New comment by rekoil in "BCacheFS is being disabled in the openSUSE kernels 6.17+"

rekoil — Thu, 11 Sep 2025 12:15:54 +0000

Sounds like what bcache does? https://bcache.evilpiepirate.org/

This is what bcachefs is based on.